Yii框架应用程序整合Ucenter实现同步注册、登录和退出等

zhengdl126

浏览: 2538680 次
性别:
来自: 深圳

最近访客更多访客>>

lxin410

u012363178

xjf112233445566

seavers

博主相关

博客

微博

相册

留言

关于我

文章分类

社区版块

存档分类

博客分类：

framework

[转]http://lonestone.iteye.com/blog/1129071

如今很多网站都要整合论坛程序，而康盛的Discuz系列产品往往是首选。然后就有了整合用户的需要，康盛提供了Ucenter架构，方便对不同的应用程序进行单点登录整合。

进来我尝试将ucenter整合到Yii网站中，获得了成功，虽然登录同步程序不是很妥当，基本使用没有问题了。我将继续改进。下面说说步骤：

下载安装ucenter和discuz，我使用的是ucenter1.6和discuz7.2，由于7.2自带的uc_client是旧版本，所以需要覆盖一下1.6版本。
复制一份uc_client文件夹到 protected/vendors/下，然后建立一个ucenter.php文件，内容如下：
Php代码
1. <?php
2. include dirname(__FILE__).'/../config/main.php';
3. include dirname(__FILE__).'/uc_client/client.php';
可以看到这里只是包含了两个文件。然后打开yii的主配置文件 protected/config/main.php，加入ucenter的一些全局变量的设置：
Php代码
1. <?php
2. define('UC_CONNECT', 'mysql'); // 连接 UCenter 的方式: mysql/NULL, 默认为空时为 fscoketopen()
3. // mysql 是直接连接的数据库, 为了效率, 建议采用 mysql
4. //数据库相关 (mysql 连接时, 并且没有设置 UC_DBLINK 时, 需要配置以下变量)
5. define('UC_DBHOST', 'localhost'); // UCenter 数据库主机
6. define('UC_DBUSER', 'root'); // UCenter 数据库用户名
7. define('UC_DBPW', ''); // UCenter 数据库密码
8. define('UC_DBNAME', '027xfbbs'); // UCenter 数据库名称
9. define('UC_DBCHARSET', 'utf8'); // UCenter 数据库字符集
10. define('UC_DBTABLEPRE', '027xfbbs.uc_'); // UCenter 数据库表前缀
12. //通信相关
13. define('UC_KEY', 'ebR4GhhpZB7e9Mhb'); // 与 UCenter 的通信密钥, 要与 UCenter 保持一致
14. define('UC_API', 'http://027xf.test/ucenter'); // UCenter 的 URL 地址, 在调用头像时依赖此常量
15. define('UC_CHARSET', 'utf8'); // UCenter 的字符集
16. define('UC_IP', ''); // UCenter 的 IP, 当 UC_CONNECT 为非 mysql 方式时, 并且当前应用服务器解析域名有问题时, 请设置此值
17. define('UC_APPID', 2); // 当前应用的 ID
19. // uncomment the following to define a path alias
20. // Yii::setPathOfAlias('local','path/to/local-folder');
22. // This is the main Web application configuration. Any writable
23. // CWebApplication properties can be configured here.
24. return array(
25. 'basePath'=>dirname(__FILE__).DIRECTORY_SEPARATOR.'..',
27. .....
请根据你的情况修改上面的数据库名等设置。
实现同步注册，我采用的是定义了表单RegisterForm来处理用户的注册，下面是一个典型的注册表单及其验证和业务逻辑代码：
Php代码
1. <?php
3. /**
4. * LoginForm class.
5. * LoginForm is the data structure for keeping
6. * user login form data. It is used by the 'login' action of 'SiteController'.
7. */
8. class RegisterForm extends CFormModel
9. {
10. public $username;
11. public $password;
12. public $repassword;
13. public $email;
14. public $verifyCode;
16. /**
17. * Declares the validation rules.
18. * The rules state that username and password are required,
19. * and password needs to be authenticated.
20. */
21. public function rules()
22. {
23. return array(
24. // username and password are required
25. array('username, password, repassword, email, verifyCode', 'required'),
26. array('username', 'length', 'max'=>20, 'min'=>5),
27. // 用户名唯一性验证
28. //array('username', 'unique','caseSensitive'=>false,'className'=>'user','message'=>'用户名"{value}"已经被注册，请更换'),
29. array('username', 'checkname'),
30. // 密码一致性验证
31. array('repassword', 'compare', 'compareAttribute'=>'password','message'=>'两处输入的密码并不一致'),
32. // 电子邮件验证
33. array('email', 'email'),
34. // 电子邮件唯一性
35. //array('email', 'unique','caseSensitive'=>false,'className'=>'user','message'=>'电子邮件"{value}"已经被注册，请更换'),
36. array('email', 'checkemail'),
37. //array('birthday', 'match', 'pattern'=& gt;'%^\d{4}(\-|\/|\.)\d{1,2}\1\d{1,2}$%', 'allowEmpty'=> true, 'message'=>'生日必须是年-月-日格式'),
38. //array('mobile', 'length', 'max'=>11, 'min'=>11, 'tooLong'=>'手机号码错误','tooShort'=>'手机号码错误'),
39. array('verifyCode', 'captcha', 'allowEmpty'=> false),
40. );
41. }
43. public function checkname($attribute,$params)
44. {
45. //ucenter
46. Yii::import('application.vendors.*');
47. include_once 'ucenter.php';
48. $flag = uc_user_checkname($this->username);
50. switch($flag)
51. {
52. case -1:
53. $this->addError('username', '用户名不合法');
54. break;
55. case -2:
56. $this->addError('username','包含不允许注册的词语');
57. break;
58. case -3:
59. $this->addError('username','用户名已经存在');
60. break;
61. }
62. }
64. public function checkemail($attribute,$params)
65. {
66. //ucenter
67. Yii::import('application.vendors.*');
68. include_once 'ucenter.php';
69. $flag = uc_user_checkemail($this->email);
71. switch($flag)
72. {
73. case -4:
74. $this->addError('email', 'Email 格式有误');
75. break;
76. case -5:
77. $this->addError('email','Email 不允许注册');
78. break;
79. case -6:
80. $this->addError('email','该 Email 已经被注册');
81. break;
82. }
83. }
85. /**
86. * Declares attribute labels.
87. */
88. public function attributeLabels()
89. {
90. return array(
91. 'username'=>'设定用户名',
92. 'password'=>'设定密码',
93. 'repassword'=>'再次输入密码',
94. 'email'=>'电子邮件地址',
95. 'mobile'=>'手机号码',
96. 'verifyCode'=>'验证码',
97. );
98. }
100. /**
101. * 注册用户
102. * @return boolean whether register is successful
103. */
104. public function register($uid)
105. {
106. //ucenter
107. Yii::import('application.vendors.*');
108. include_once 'ucenter.php';
109. $uid = uc_user_register($this->username, $this->password, $this->email);
110. if($uid>0)
111. {
112. $model = new user;
113. $model->attributes = $_POST['RegisterForm'];
114. $model->password = md5($_POST['RegisterForm']['password']);
115. $model->id = $uid;
117. return $model->save();
118. }
119. }
120. }
我们看看上面的代码，调用了uc_user_checkname和uc_user_checkemail完成了用户名和email的验证，然后调用了 uc_user_register将用户注册到ucenter，成功后，再注册到Yii应用。
实现用户登录，典型的Yii应用使用 CUserIdentity来实现登录，我们要做的就是继承它，实现自己的验证逻辑：
Php代码
1. <?php
3. /**
4. * UserIdentity represents the data needed to identity a user.
5. * It contains the authentication method that checks if the provided
6. * data can identity the user.
7. */
8. class UserIdentity extends CUserIdentity
9. {
10. public $id;
11. /**
12. * Authenticates a user.
13. * The example implementation makes sure if the username and password
14. * are both 'demo'.
15. * In practical applications, this should be changed to authenticate
16. * against some persistent user identity storage (e.g. database).
17. * @return boolean whether authentication succeeds.
18. */
19. public function authenticate()
20. {
21. //ucenter
22. Yii::import('application.vendors.*');
23. include_once 'ucenter.php';
24. list($uid, $username, $password, $email) = uc_user_login($this->username, $this->password);
25. if($uid > 0)
26. {
27. $user = user::model()->findByPk($uid);
29. if($user == null)//说明网站数据库中没有，而ucenter中有这个用户，添加用户
30. {
31. $user = new user;
32. $user->username = $username;
33. $user->password = md5($password);
34. $user->email = $email;
35. $user->id = $uid;
36. $user->save();
38. $user->refresh();
39. }
41. $this->username = $user->username;
42. $this->id = $user->id;
44. $user->last_login_time = $user->this_login_time;
45. $user->this_login_time = time();
46. $user->last_login_ip = $user->this_login_ip;
47. $user->this_login_ip = Yii::app()->getRequest()->userHostAddress;
48. $user->save();
50. $this->errorCode=self::ERROR_NONE;
51. }
52. elseif($uid == -1)
53. {
54. $this->errorCode=self::ERROR_USERNAME_INVALID;
55. }
56. elseif($uid == -2)
57. {
58. $this->errorCode=self::ERROR_PASSWORD_INVALID;
59. }
61. return !$this->errorCode;
62. }
64. public function getId()
65. {
66. return $this->id;
67. }
68. }
请根据自己的应用情况进行修改即可，这里我们不需要对Yii的用户登录做任何修改。
然后我们修改 SiteController/actionLogin 方法，将同步登录其他应用的js输出到浏览器：
Php代码
1. /**
2. * Displays the login page
3. */
4. public function actionLogin()
5. {
6. $model=new LoginForm;
8. // if it is ajax validation request
9. if(isset($_POST['ajax']) && $_POST['ajax']==='login-form')
10. {
11. echo CActiveForm::validate($model);
12. Yii::app()->end();
13. }
15. // collect user input data
16. if(isset($_POST['LoginForm']))
17. {
18. $model->attributes=$_POST['LoginForm'];
19. // validate user input and redirect to the previous page if valid
20. if($model->validate() && $model->login())
21. {
22. //ucenter
23. Yii::import('application.vendors.*');
24. include_once 'ucenter.php';
25. $script = uc_user_synlogin(Yii::app()->user->id);
26. $this->render('loginsuc', array(
27. 'script' => $script,
28. ));
29. Yii::app()->end();
30. }
31. }
32. // display the login form
33. $this->render('login',array('model'=>$model));
34. }
简单的loginsuc.php视图文件：
Php代码
1. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
2. <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
3. <head>
4. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
5. </head>
6. <body>
7. <?php
8. $this->layout = 'none';
9. echo $script;
10. ?>
11. <script type="text/javascript">setTimeout('location.href="<?php echo Yii::app()->user->returnUrl ?>"',3000);</script>
12. 登录成功，正在返回登录前页面...
13. </body>
14. </html>
继续修改 SiteController/actionLogout方法，实现同步退出：
Php代码
1. /**
2. * Logs out the current user and redirect to homepage.
3. */
4. public function actionLogout()
5. {
6. Yii::app()->user->logout();
7. //ucenter
8. Yii::import('application.vendors.*');
9. include_once 'ucenter.php';
10. $script = uc_user_synlogout();
11. $this->render('logoutsuc', array(
12. 'script' => $script,
13. ));
14. Yii::app()->end();
15. }
简单的logoutsuc.php视图文件：
Php代码
1. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
2. <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
3. <head>
4. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
5. </head>
6. <body>
7. <?php
8. $this->layout = 'none';
9. echo $script;
10. ?>
11. <script type="text/javascript">setTimeout('location.href="<?php echo Yii::app()->homeUrl ?>"',3000);</script>
12. 退出成功，正在返回首页...
13. </body>
14. </html>
进行到这里，我们已经实现了整合ucenter的登录和注册了，这样ucenter中有的用户，可以登录到yii应用，yii应用也可以注册用户到ucenter了。但是这还没有完成，我们需要的是在discuz中用户登录时，也同步登录yii应用，退出亦然，那么我们需要实现 Yii应用的 api/uc.php 这个接口程序。由于我们要用到Yii的框架资源，所以我没有采用硬编码的方式实现这个接口，而是创建了一个UcApplication类完成这个任务，继续往下看。
首先建立 api/uc.php 入口文件，代码如下：
Php代码
1. <?php
2. define('UC_CLIENT_VERSION', '1.6.0');
3. define('UC_CLIENT_RELEASE', '20110501');
5. define('API_DELETEUSER', 1); //note 用户删除 API 接口开关
6. define('API_RENAMEUSER', 1); //note 用户改名 API 接口开关
7. define('API_GETTAG', 1); //note 获取标签 API 接口开关
8. define('API_SYNLOGIN', 1); //note 同步登录 API 接口开关
9. define('API_SYNLOGOUT', 1); //note 同步登出 API 接口开关
10. define('API_UPDATEPW', 1); //note 更改用户密码开关
11. define('API_UPDATEBADWORDS', 1); //note 更新关键字列表开关
12. define('API_UPDATEHOSTS', 1); //note 更新域名解析缓存开关
13. define('API_UPDATEAPPS', 1); //note 更新应用列表开关
14. define('API_UPDATECLIENT', 1); //note 更新客户端缓存开关
15. define('API_UPDATECREDIT', 1); //note 更新用户积分开关
16. define('API_GETCREDITSETTINGS', 1); //note 向 UCenter 提供积分设置开关
17. define('API_GETCREDIT', 1); //note 获取用户的某项积分开关
18. define('API_UPDATECREDITSETTINGS', 1); //note 更新应用积分设置开关
20. define('API_RETURN_SUCCEED', '1');
21. define('API_RETURN_FAILED', '-1');
22. define('API_RETURN_FORBIDDEN', '-2');
24. // change the following paths if necessary
25. $yii=dirname(__FILE__).'/../protected/yii-1.1.6/framework/yii.php';
26. $config=dirname(__FILE__).'/../protected/config/main.php';
28. // remove the following lines when in production mode
29. defined('YII_DEBUG') or define('YII_DEBUG',true);
30. // specify how many levels of call stack should be shown in each log message
31. defined('YII_TRACE_LEVEL') or define('YII_TRACE_LEVEL',0);
33. require_once($yii);
34. require(dirname(__FILE__).'/../protected/components/UcApplication.php');
35. Yii::createApplication('UcApplication', $config)->run();
这里可以看到，这个脚本和标准的index.php是一样的，只是使用了不同的Application类。我们接着看这个类。
建立 protected/components/UcApplication.php类文件：
Php代码
1. <?php
2. class UcApplication extends CWebApplication
3. {
4. public $defaultController = 'Uc';
6. private $route = '';
8. protected function preinit()
9. {
10. $this->parseRequest();
11. }
13. private function parseRequest()
14. {
15. $_DCACHE = $get = $post = array();
17. $code = @$_GET['code'];
18. parse_str($this->_authcode($code, 'DECODE', UC_KEY), $get);
19. if(MAGIC_QUOTES_GPC) {
20. $get = $this->_stripslashes($get);
21. }
23. $timestamp = time();
24. if($timestamp - $get['time'] > 3600) {
25. //exit('Authracation has expiried');
26. }
27. if(emptyempty($get)) {
28. exit('Invalid Request');
29. }
30. $action = $get['action'];
32. require_once 'xml.class.php';
33. $post = xml_unserialize(file_get_contents('php://input'));
34. Yii::log($get, 'debug');
35. Yii::log($post, 'debug');
36. $_GET = $get;
37. $_POST = $post;
39. $this->route = $this->defaultController .'/'. $action;
41. if(!in_array($action, array('test', 'deleteuser', 'renameuser', 'gettag', 'synlogin', 'synlogout', 'updatepw', 'updatebadwords', 'updatehosts', 'updateapps', 'updateclient', 'updatecredit', 'getcreditsettings', 'updatecreditsettings')))
42. {
43. exit(API_RETURN_FAILED);
44. }
45. }
47. public function processRequest()
48. {
49. $this->runController($this->route);
50. }
52. private function _authcode($string, $operation = 'DECODE', $key = '', $expiry = 0) {
53. $ckey_length = 4;
55. $key = md5($key ? $key : UC_KEY);
56. $keya = md5(substr($key, 0, 16));
57. $keyb = md5(substr($key, 16, 16));
58. $keyc = $ckey_length ? ($operation == 'DECODE' ? substr($string, 0, $ckey_length): substr(md5(microtime()), -$ckey_length)) : '';
60. $cryptkey = $keya.md5($keya.$keyc);
61. $key_length = strlen($cryptkey);
63. $string = $operation == 'DECODE' ? base64_decode(substr($string, $ckey_length)) : sprintf('%010d', $expiry ? $expiry + time() : 0).substr(md5($string.$keyb), 0, 16).$string;
64. $string_length = strlen($string);
66. $result = '';
67. $box = range(0, 255);
69. $rndkey = array();
70. for($i = 0; $i <= 255; $i++) {
71. $rndkey[$i] = ord($cryptkey[$i % $key_length]);
72. }
74. for($j = $i = 0; $i < 256; $i++) {
75. $j = ($j + $box[$i] + $rndkey[$i]) % 256;
76. $tmp = $box[$i];
77. $box[$i] = $box[$j];
78. $box[$j] = $tmp;
79. }
81. for($a = $j = $i = 0; $i < $string_length; $i++) {
82. $a = ($a + 1) % 256;
83. $j = ($j + $box[$a]) % 256;
84. $tmp = $box[$a];
85. $box[$a] = $box[$j];
86. $box[$j] = $tmp;
87. $result .= chr(ord($string[$i]) ^ ($box[($box[$a] + $box[$j]) % 256]));
88. }
90. if($operation == 'DECODE') {
91. if((substr($result, 0, 10) == 0 || substr($result, 0, 10) - time() > 0) && substr($result, 10, 16) == substr(md5(substr($result, 26).$keyb), 0, 16)) {
92. return substr($result, 26);
93. } else {
94. return '';
95. }
96. } else {
97. return $keyc.str_replace('=', '', base64_encode($result));
98. }
100. }
102. private function _stripslashes($string) {
103. if(is_array($string)) {
104. foreach($string as $key => $val) {
105. $string[$key] = $this->_stripslashes($val);
106. }
107. } else {
108. $string = stripslashes($string);
109. }
110. return $string;
111. }
112. }
这里可以看到，主要逻辑是processRequest方法，实现了ucenter通知的解码、调用相应的控制器和动作实现操作。
然后建立 protected/controller/UcController.php文件，代码如下：
Php代码
1. <?php
2. class UcController extends Controller
3. {
4. private $appdir = '';
6. protected function beforeAction(CAction $action)
7. {
8. $this->appdir = Yii::app()->basePath . '/vendors/';
9. return parent::beforeAction($action);
10. }
12. public function actionTest() {
13. echo API_RETURN_SUCCEED;
14. }
16. public function actionDeleteuser() {
17. $uids = explode(',', str_replace("'", '', $_GET['ids']));
18. !API_DELETEUSER && exit(API_RETURN_FORBIDDEN);
20. $users = user::model()->findAllByPk($uids);
21. foreach($users as $user)
22. {
23. $user->delete();
24. }
26. echo API_RETURN_SUCCEED;
27. }
29. public function actionRenameuser() {
30. $uid = $_GET['uid'];
31. $usernameold = $_GET['oldusername'];
32. $usernamenew = $_GET['newusername'];
33. if(!API_RENAMEUSER) {
34. echo API_RETURN_FORBIDDEN;
35. }
37. $user = user::model()->findByPk($uid);
38. if($user !== null)
39. {
40. $user->username = $usernamenew;
41. if($user->save(false))
42. echo API_RETURN_SUCCEED;
43. else
44. echo API_RETURN_FAILED;
45. }
46. }
48. public function actionGettag() {
49. $name = $_GET['id'];
50. if(!API_GETTAG) {
51. echo API_RETURN_FORBIDDEN;
52. }
54. $echo = array();
55. echo $this->_serialize($return, 1);
56. }
58. public function actionSynlogin() {
59. $uid = $_GET['uid'];
60. $username = $_GET['username'];
61. if(!API_SYNLOGIN) {
62. echo API_RETURN_FORBIDDEN;
63. }
65. $identity=new UcUserIdentity($username);
67. if($identity->authenticate())
68. {
69. Yii::app()->user->login($identity, 0);
70. }
72. header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"');
73. //$_SESSION[Yii::app()->user->stateKeyPrefix.'__id'] = $uid;
74. //$_SESSION[Yii::app()->user->stateKeyPrefix.'__name'] = $username;
75. }
77. public function actionSynlogout() {
78. if(!API_SYNLOGOUT) {
79. echo API_RETURN_FORBIDDEN;
80. }
82. //note 同步登出 API 接口
83. header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"');
84. Yii::app()->user->logout();
85. }
87. public function actionUpdatepw() {
88. if(!API_UPDATEPW) {
89. echo API_RETURN_FORBIDDEN;
90. }
91. $username = $_GET['username'];
92. $password = $_GET['password'];
94. $user = user::model()->findByAttributes(array('username'=>$username));
95. if($user !== null)
96. {
97. $user->password = md5($password);
98. if($user->save())
99. echo API_RETURN_SUCCEED;
100. else
101. echo API_RETURN_FAILED;
102. }
103. else
104. echo API_RETURN_FAILED;
105. }
107. public function actionUpdatebadwords() {
108. if(!API_UPDATEBADWORDS) {
109. echo API_RETURN_FORBIDDEN;
110. }
111. $cachefile = $this->appdir.'./uc_client/data/cache/badwords.php';
112. $fp = fopen($cachefile, 'w');
113. $data = array();
114. if(is_array($_POST)) {
115. foreach($_POST as $k => $v) {
116. $data['findpattern'][$k] = $v['findpattern'];
117. $data['replace'][$k] = $v['replacement'];
118. }
119. }
120. $s = "<?php\r\n";
121. $s .= '$_CACHE[\'badwords\'] = '.var_export($data, TRUE).";\r\n";
122. fwrite($fp, $s);
123. fclose($fp);
124. echo API_RETURN_SUCCEED;
125. }
127. public function actionUpdatehosts() {
128. if(!API_UPDATEHOSTS) {
129. echo API_RETURN_FORBIDDEN;
130. }
131. $cachefile = $this->appdir.'./uc_client/data/cache/hosts.php';
132. $fp = fopen($cachefile, 'w');
133. $s = "<?php\r\n";
134. $s .= '$_CACHE[\'hosts\'] = '.var_export($_POST, TRUE).";\r\n";
135. fwrite($fp, $s);
136. fclose($fp);
137. echo API_RETURN_SUCCEED;
138. }
140. public function actionUpdateapps() {
141. if(!API_UPDATEAPPS) {
142. echo API_RETURN_FORBIDDEN;
143. }
144. $UC_API = $_POST['UC_API'];
146. //note 写 app 缓存文件
147. $cachefile = $this->appdir.'./uc_client/data/cache/apps.php';
148. $fp = fopen($cachefile, 'w');
149. $s = "<?php\r\n";
150. $s .= '$_CACHE[\'apps\'] = '.var_export($_POST, TRUE).";\r\n";
151. fwrite($fp, $s);
152. fclose($fp);
154. //note 写配置文件
155. $config_file = Yii::app()->basePath.'./config/main.php';
156. if(is_writeable($config_file)) {
157. $configfile = trim(file_get_contents($config_file));
158. $configfile = substr($configfile, -2) == '?>' ? substr($configfile, 0, -2) : $configfile;
159. $configfile = preg_replace("/define$'UC_API',\s*'.*?'$;/i", "define('UC_API', '$UC_API');", $configfile);
160. if($fp = @fopen($config_file, 'w')) {
161. @fwrite($fp, trim($configfile));
162. @fclose($fp);
163. }
164. }
166. echo API_RETURN_SUCCEED;
167. }
169. public function actionUpdateclient() {
170. if(!API_UPDATECLIENT) {
171. echo API_RETURN_FORBIDDEN;
172. }
173. $cachefile = $this->appdir.'./uc_client/data/cache/settings.php';
174. $fp = fopen($cachefile, 'w');
175. $s = "<?php\r\n";
176. $s .= '$_CACHE[\'settings\'] = '.var_export($_POST, TRUE).";\r\n";
177. fwrite($fp, $s);
178. fclose($fp);
179. echo API_RETURN_SUCCEED;
180. }
182. public function actionUpdatecredit() {
183. if(!API_UPDATECREDIT) {
184. echo API_RETURN_FORBIDDEN;
185. }
186. $credit = $_GET['credit'];
187. $amount = $_GET['amount'];
188. $uid = $_GET['uid'];
189. echo API_RETURN_SUCCEED;
190. }
192. public function actionGetcredit() {
193. if(!API_GETCREDIT) {
194. echo API_RETURN_FORBIDDEN;
195. }
196. }
198. public function actionGetcreditsettings() {
199. if(!API_GETCREDITSETTINGS) {
200. echo API_RETURN_FORBIDDEN;
201. }
202. $credits = array();
203. echo $this->_serialize($credits);
204. }
206. public function actionUpdatecreditsettings() {
207. if(!API_UPDATECREDITSETTINGS) {
208. echo API_RETURN_FORBIDDEN;
209. }
210. echo API_RETURN_SUCCEED;
211. }
213. private function _serialize($arr, $htmlon = 0) {
214. if(!function_exists('xml_serialize')) {
215. include_once 'xml.class.php';
216. }
217. echo xml_serialize($arr, $htmlon);
218. }
219. }
上面用到了xml.class.php这个类文件，可以在uc_client/lib目录找到。
这里需要说明的是，actionSynlogin方法中，利用了我定义的特殊的UserIdentity来登录的，因为不需要提供密码。
再来看看最后一个类：
Php代码
1. <?php
3. /**
4. * UserIdentity represents the data needed to identity a user.
5. * It contains the authentication method that checks if the provided
6. * data can identity the user.
7. */
8. class UcUserIdentity extends CUserIdentity
9. {
10. public $id;
12. /**
13. * Constructor.
14. * @param string $username username
15. */
16. public function __construct($username)
17. {
18. $this->username=$username;
19. $this->password='';
20. }
21. /**
22. * Authenticates a user.
23. * The example implementation makes sure if the username and password
24. * are both 'demo'.
25. * In practical applications, this should be changed to authenticate
26. * against some persistent user identity storage (e.g. database).
27. * @return boolean whether authentication succeeds.
28. */
29. public function authenticate()
30. {
31. $user = user::model()->findByAttributes(array('username'=>$this->username));
33. if($user == null)//说明网站数据库中没有，而ucenter中有这个用户，添加用户
34. {
35. //ucenter
36. Yii::import('application.vendors.*');
37. include_once 'ucenter.php';
38. list($uid, $username, $email) = uc_get_user($this->username);
39. if($uid)
40. {
41. $user = new user;
42. $user->username = $username;
43. $user->password = md5(rand(10000,99999));
44. $user->email = $email;
45. $user->id = $uid;
46. $user->save();
48. $user->refresh();
49. }
50. }
52. $this->id = $user->id;
54. $user->last_login_time = $user->this_login_time;
55. $user->this_login_time = time();
56. $user->last_login_ip = $user->this_login_ip;
57. $user->this_login_ip = Yii::app()->getRequest()->userHostAddress;
58. $user->save();
60. $this->errorCode=self::ERROR_NONE;
62. return !$this->errorCode;
63. }
65. public function getId()
66. {
67. return $this->id;
68. }
69. }
可以看到，在这个认证类中，实现了对yii应用中没有的用户的建立操作。然后不需要对yii应用做任何特殊设置，就可以实现api接口了。
然后我们在ucenter中添加yii应用的设置，修改main.php中的相应设置，应该就可以实现ucenter的同步登录、注册、退出、删除用户、修改用户名等等功能了！这个实现方法相对很Yii，呵呵。